> > Probably, although you don't mention what you're trying to specify source > > ports for. If you need to make custom rules, that's what the > > ipchains.input, ipchains.output, and ipchains.forward files are for in > /etc. > > I want local users to be able to ssh into external machines, and (being > fairly pedantic about firewalls) I only want to specify port 22 for external > machines. If I edit those files, how do they relate to the config files (No > 2 on the network config menu)
The files are sourced by /etc/ipfilter.conf, so you can use any variables or procedures defined in /etc/network.conf, /etc/ipfilter.conf, or /etc/init.d/network. Look for IPCH_IN, IPCH_OUT, and IPCH_FWD in /etc/ipfilter.conf to see exactly where they are sourced in relation to the rest of the rules. You can either add rules using the -A option (probably what you want in your case), or the I option to add rules at the beginning of the list (for things like silently denying something filling up your logs). Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
